87857ca254cbb2ecb7a05bc6fb9e0354

General

Target

87857ca254cbb2ecb7a05bc6fb9e0354
Size

323KB
MD5

87857ca254cbb2ecb7a05bc6fb9e0354
SHA1

427b23ede6d3a64b3a04cd77186ca5c5aa690273
SHA256

c18f8ee42db1c20ee173657ea9350445efd5805b598e7f6e44dddbeb607086d2
SHA512

378fecf3fe7ebcb0a3d26af88ccee3deb8ccaa7a4ef86f7d2672000539341500879808315e0f45aab6e69979d9e45f2b51a015032beed9a8e4e2b59b05dfc669
SSDEEP

6144:nwIiFZC5szdaVMDqDEoNxWs8LPyTJ3v7RKysf8Lyj081BaUK2rmow:nwIEaODqDDsPyTNv7Psf8GTaFR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87857ca254cbb2ecb7a05bc6fb9e0354

Files

87857ca254cbb2ecb7a05bc6fb9e0354
.exe windows:4 windows x86 arch:x86

0d779f4f12ed0f475c1866ac85dc528d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LocalAlloc
HeapFree
VirtualAlloc
CreateFileW
GetModuleFileNameW
QueryPerformanceCounter
DisableThreadLibraryCalls
Sleep
GetCurrentProcess
GetCurrentProcessId
CreateEventW
LoadLibraryA
CreateThread
GetSystemTimeAsFileTime
EnterCriticalSection
HeapDestroy
GetModuleHandleA
InitializeCriticalSection
GetCurrentThreadId
GetTickCount
LeaveCriticalSection
ReadFile
lstrlenA
GetVersionExA
LocalFree
InterlockedIncrement
UnhandledExceptionFilter

user32

KillTimer
CharNextW
DefWindowProcW
PostQuitMessage
SetForegroundWindow
GetSystemMetrics
CreateWindowExW
SetWindowTextW
SendDlgItemMessageW
SetTimer
IsWindow
EndPaint
LoadCursorW
GetDesktopWindow
SetCursor
EnableWindow
GetWindowRect
LoadIconW
SendMessageW
InvalidateRect
DispatchMessageW
SetFocus
GetClientRect
LoadStringW
ReleaseDC
PeekMessageW
PostMessageW

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

4MUax2Tw
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

cc3Zc08S
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d779f4f12ed0f475c1866ac85dc528d

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 36KB - Virtual size: 36KB

4MUax2Tw Size: 512B - Virtual size: 4KB

cc3Zc08S Size: 512B - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 96KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 36KB - Virtual size: 36KB

4MUax2Tw
Size: 512B - Virtual size: 4KB

cc3Zc08S
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 96KB